3 matches found
CVE-2009-3922
Multiple cross-site request forgery CSRF vulnerabilities in the User Protect module 5.x before 5.x-1.4 and 6.x before 6.x-1.3, a module for Drupal, allow remote attackers to hijack the authentication of administrators for requests that 1 delete the editing protection of a user or 2 delete a certa...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the User Protect module 5.x before 5.x-1.4 and 6.x before 6.x-1.3, a module for Drupal, allow remote attackers to hijack the authentication of administrators for requests that 1 delete the editing protection of a user or 2 delete a certa...
CVE-2009-3922
Multiple cross-site request forgery CSRF vulnerabilities in the User Protect module 5.x before 5.x-1.4 and 6.x before 6.x-1.3, a module for Drupal, allow remote attackers to hijack the authentication of administrators for requests that 1 delete the editing protection of a user or 2 delete a certa...